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(57) Abstract 

The invention relates to a telecommunication system and a method for authenticating a subscriber in a telecommunication 
system. The system comprises a transmission network having subscriber identity codes of a first format and a first subscriber au- 
thentication procedure. An exchange (MSC1, MSC2) of the transmission network is connected to a subsystem having subscriber 
identity codes of a second format and a second subscriber authentication procedure. The calls of the subscribers (MT1 to MT6) of 
the subsystem are routed through the transmission network and said exchange (MSC1, MSC2). In the invention, the authentica- 
tion of both subscriber types is enabled in the transmission network by locating the parameter generation algorithms of both the 
first and the second authentication procedure in a transmission network authentication centre (AC). The proper algorithm for 
each subscriber to be authenticated is selected on the basis of the type of the subscriber (MS, MT1 to MT6). 
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Telecommunication system and subscriber authentica- 
tion method 

Field of the Invention 
5 The invention relates a subscriber authentica- 

tion method in a telecommunication system comprising 
a transmission network having subscriber identity 
codes of a first format, a first subscriber authen- 
tication procedure and at least one exchange; a sub- 

10 system connected to said exchange and having 
subscriber identity codes of a second format and a 
second subscriber authentication procedure, the calls 
of the subscribers of the subsystem being routed 
through the transmission network and said exchange, 

15 the method comprising the steps: the transmission 
network sends an authentication message containing a 
first authentication parameter to the subscriber 
through the exchange; the subscriber generates a 
second authentication parameter in response to the 

20 received first authentication parameter and sends it 
through the exchange as an authentication response to 
the transmission network, and the transmission net- 
work compares the second authentication parameter 
generated by the subscriber with a corresponding 

25 reference parameter and regards the subscriber as 
correctly authenticated if the second authentication 
parameter and the reference parameter are equal. 

Background of the Invention 

30 Cordless telephone (CT) systems, such as the 

digital cordless -telephone -system CT2, have recently 
been introduced into the market. Such systems com- 
prise a base station intended to be connected to a 
public switched telephone network (PSTN). There are 

35 three different types of base stations: a residential 
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( home ) base station, a base station connected to a 
private branch exchange (PBX) in an office or con- 
figured to operate as a PBX, and telepoint base sta- 
tions, by means of which outward calls only are 

5 possible for a CT telephone. 

As the present-day CT systems are regarded as 
PSTN subscriber connections (access points in PSTN), 
a call is addressed to the CT terminal equipment in a 
normal way by dialing a telephone number in accord- 

10 ance with the PSTN numbering scheme. On the basis of 
the telephone number the PSTN thereby routes the call 
to a respective subscriber connection to which the CT 
residential base station or the PBX of the CT office 
base station is connected. The base station pages the 

15 CT terminal equipment over the radio path by means of 
an identity code determined by the numbering scheme 
of the CT system, and sets up a call when the 
terminal equipment responds. In practice, it is thus 
possible to make a call to the CT terminal equipment 

20 only through its residential or office base stations 
(through predetermined subscriber connections)- 

Accordingly, the numbering schemes of the 
present CT systems themselves serve only the CT radio 
link and are not utilized anywhere in the PSTN* 

25 In the future it may become advantageous to be 

able to connect CT systems even to mobile radio net- 
works. As there are no addressable access points 
(such as PSTN subscriber connections) but only common 
traffic channels shared by all mobile subscriber 

30 equipments in the mobile radio network, the setup of 
a call is always based on the use of an identity code 
assigned to the subscriber equipment. 

A problem therewith is, however, that the 
numbering schemes specified for the cordless tele- 

35 phone system and for the mobile radio system are 
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usually quite different and incompatible. Integrating 
such systems would require matching of the numbering 
schemes . 

In FI Patent Application 914655, to solve this 
5 problem, a unique subscriber identity code for the 
fixed transmission network can be derived from the 
binary subscriber identity code of the CT system by a 
simple algorithm at the system interfaces or the same 
CT subscriber identity code can be restored by an 

10 inverse algorithm. 

In the mobile radio network, the subscriber 
identification or authentication is performed at 
least in connection with the registration to the base 
station and the call setup. Correspondingly, the 

15 authentication procedure is usually performed in the 
CT systems at least in connection with the call set- 
up . A problem with the integration of the CT system 
and the mobile radio system is that their authentica- 
tion procedures differ from each other and cannot be 

20 altered or interconnected so as to be compatible. 



Background of the Invention 

One object of the invention is to eliminate the 
above-mentioned problem. 

25 This is achieved by means of a method of the 

type disclosed in the introductory chapter, which 
according to the invention is characterized in that 
the transmission network employs for identification 
of a subscriber of the subsystem a subscriber 

30 identity code converted from the second format to the 
first format and containing a system code indicating 
that the identity code belongs to a subscriber of the 
subsystem; the transmission network employs for 
authentication of a subscriber a pair of the first 

35 authentication parameter and the reference parameter, 



WO 93/17529 



PCT/FI93/00063 



4 

generated according to the authentication procedure 
of the transmission system , when a subscriber 
identity code belongs to a subscriber of the trans- 
mission system; the transmission network employs for 
5 authentication of a subscriber a pair of the first 
authentication parameter and the reference parameter , 
generated according to the authentication procedure 
of the subsystem,, when a subscriber identity code 
belongs to a subscriber of the subsystem. 
10 The invention also relates to a telecommunica- 

tion system comprising a transmission network having 
subscriber identity codes of a first format and a 
first subscriber authentication procedure and at 
least one exchange; a subsystem connected to said ex- 
15 change and having subscriber identity codes of a 
second format and a second subscriber authentication 
procedure, the calls of the subscribers of the sub- 
system being routed through the transmission network 
and said exchange. According to the invention the 
20 system is characterized . in that the parameter gener- 
ation algorithms of both the first and the second 
authentication procedure are located in an authen- 
tication means of the transmission network, the 
proper algorithm for each subscriber to be authen- 
25 ticated being selectable on the basis of the type of 
the subscriber. 

In the invention the subsystem subscriber is 
authenticated by the transmission system virtually in 
the same way as the subscriber of the transmission 
30 network itself except that the transmission network 
generates subscriber authentication parameters by 
different authentication algorithms,, depending on 
whether the subscriber is a subsystem subscriber or a 
transmission network subscriber. The authentication 
35 algorithms of both subscriber types are preferably 
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stored in the authentication units of the transmis- 
sion network, e.g. in an authentication centre, which 
reduces processing in the subsystem. The subsystem 
only transfers authentication requests and responses 
5 between the subscriber and the transmission system. 
In the internal messages and internal functions of 
the transmission system, the identity of the sub- 
system subscriber is a subscriber identity code con- 
verted so as to comply with the numbering scheme of 

10 the transmission network. The identification of the 
subscriber type and the selection of the appropriate 
algorithm take place on the basis of a subsystem code 
contained in the converted subscriber identity. The 
subsystem authentication data is preferably trans- 

15 f erred in the transmission network by utilizing the^ 
standard messages and information elements of the 
transmission system; the subsystem data is in- 
corporated in the existing information elements with- 
out changing the format of the element or the struc- 

20 ture of the message. In this way, no modifications 
are required in the transmission system protocols. 



Brief Description of the Drawings 

In the following the invention will be de- 
25 scribed in more detail by means of illustrating 
embodiments with reference to the attached drawings, 
in which 

Figure 1 is a block diagram illustrating a cel- 
lular mobile radio system in which the method accord- 
30 ing to the invention can be applied? 

Figure 2 is a flow and block diagram illustrat- 
ing the numbering scheme conversion method according 
to the invention in the system of Figure 1; 

Figure 3 is a flow and signalling diagram 
35 illustrating the authentication procedure according 
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■to the CT2 system; 

Figure 4 is a flow and signalling diagram 
illustrating the authentication procedure according 
to the GSM system; and 
5 Figure 5 is a signalling diagram illustrating 

an authentication procedure of a CT2 system integ- 
rated in a GSM system. 

Detailed Description of the Invention 

10 In the following the invention will be de- 

scribed by means of an example in which a digital 
cordless telephone system CT2 is integrated in a 
digital radio telephone system GSM, which is the 
primary application of the invention. The method 

15 according to the invention can, however, also be 
applied on connecting other cordless telephone 
systems, such as DECT (Digital European Cordless 
Telecommunications ) , to the GSM or its modifications 
or to other similar mobile radio systems or switched 

20 transmission networks* 

The basic structure and basic functions of the 
GSM mobile radio system are well-known to one skilled 
in the art and relatively accurately defined in the 
specifications of the GSM system, A reference is also 

25 made to TJie GSM System for Mobile Communications, M. 
Moyly and M.B. Paulet, Palaiseau, France, 1992; ISBN 
2-9507190-0-7. In the following a few basic concepts 
and elements of the GSM system will be defined with 
reference to Figure 1. An area within which the GSM 

30 mobile radio services are available is called a GSM 
network (GSM service area ) , which may cover several 
countries* The GSM network may be divided into 
national GSM networks (PLMN service area), i.e. areas 
covered by one operator offering GSM services,, There 

35 may also be several GSM networks in the same country 
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and the areas covered by them may overlap geo- 
graphically. In the text below, the GSM network 
primarily refers to such a "national" network. 

The GSM network may comprise one or more MSG 

5 areas, i.e. areas within which services are provided 
by a single mobile services switching centre MSC 
(mobile exchange). The MSC area, in turn, may contain 
one or more location areas each covered by one or 
more radio cells. The cell is the smallest geo- 

10 graphical area of the system, comprising one or more 
fixed radio stations, i.e. base stations , and using 
predetermined radio channels for communication. 

The GSM network comprises at least one home 
location register (HLR), which is a data base in 

15 which subscriber data, such as location data, are 
stored permanently. The HLR also has an associated 
authentication centre, which may be integrated or 
separate. The authentication centre contains sub- 
scriber authentication data and authentication 

20 algorithms. The system also comprises several visitor 
location registers (VLR) each associated with one or 
more MSC areas. However, each MSC area has a single 
VLR. The VLR is a data base in which subscriber data 
are stored while the mobile station MS visits the 

25 area of the VLR. The VLR stores information of the 
location of the mobile station MS, normally with the 
accuracy of one location area. The HLR, in turn, 
stores information of the VLR that the mobile radio 
visits and it provides routing data for routing 

30 mobile stations MS terminating calls in the network. 
The HLR, in turn, receives _ the required routing data 
from the VLR. * The HLR and the VLR have only a 
signalling connection to the other components of the 
mobile radio network. 

35 Within the GSM network the subscriber iden- 
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tification is based on the International Mobile Sub- 
scriber Identity IMS I, which comprises a GSM Mobile 
Country Code MCC (three digits ), a Mobile Network 
Code MNC (2 digits) of the national GSM network, and 
5 a Mobile Station Identification Number MSIN (ten 
digits ). The MSIN is unique within a certain national 
GSM network and can be specified by the network oper- 
ator. 

In the example of Figure 1, each MSC area has a 
10 dedicated visitor location register VLR associated 
with the mobile exchange MSC of the of the respective 
MSC area. 

Figure 1 illustrates two MSC areas, one with a 
MSC1 and a VLR1 and the other with a MSC2 and a VLR2 

15 for the traffic control. There are one or more 
location areas under the MSC area covered by the MSC1 
and MSC2, respectively, and each location area com- 
prises a base station controller BSC1 and BSC2, 
respectively, which controls several fixed radio 

20 stations, i.e. base transceiver stations BTS. Each 
radio cell comprises one BTS, and one base station 
controller BTC provides services for several cells. A 
mobile station MS located in the cell establishes a 
two-way radio link to the BTS of the cell. Both a 

25 signalling connection and speech channels are pro- 
vided between the BSC and the MSC. 

The GSM network is usually connected to other 
networks, such as the public telephone network 
(PSTN), another mobile network (PSPDN) or an ISDN 

30 network through a MSC called a gateway MSC. 

According to the invention, the cordless 
telephone system CT2 is integrated as a subsystem for 
the GSM system e.g. by connecting CT2 base stations 
BU under the control of the MSC. In Figure 1, the CT2 

35 base stations BUI, BU2 and BU3 are connected to the 
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MSC1, and the CT2 base stations BU4 and BUS are con- 
nected to the MSC2. The CT2 base station controller 
BUC is also connected to the MSC2. In practice, the 
BUC may be e.g. a telephone exchange PABX operating 
5 in compliance with the CT2 specification and 
controlling base stations BU5 - BU6. The mobile 
services switching centres MSC and the CT2 base 
stations BU and base station controllers BUC are pro- 
vided with suitable additional equipment and software 
10 for combining the mobility functions of the systems 
and for matching the numbering schemes of the 
systems . 

In principle, the GSM transmission network may 
handle CT2 subscribers similarly as actual GSM 
15 subscribers although the CT2 and GSM systems are 
fully separate radio systems at least on the radio 
path level. 

The CT2 system and the GSM system, however, 
have completely different numbering schemes, and so 

20 the CT2 subscriber identity codes cannot be used as 
such in the GSM network. 

In the CT2 system the CT2 terminal equipment 
identity code is a binary 27-bit PID (Portable 
Identity Code) which, in turn, comprises two por- 

25 tions: an 8-bit MIC (Manufacturer Identity Code) and 
a 19-bit HIC (Handset Identity Code). This code is 
used in compliance with the CT2 Common Air Interface 
(CAI) specification over the radio path between the 
CT2 base station BU and the CT2 terminal equipment 

30 MT. The CAI specification is described e.g. in CT2 
Common _ Air Interface, M.W. Evans, British Tele- 
communications Engineering, Vol. 9, July 1990, p. 
103-111. 

According to the invention, each CT2 terminal 
35 equipment is assigned another subscriber identity 
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code for the GSM system, which identity code cor- 
responds to the GSM IMSI. This identity code has to 
be unique in the GSM network, and it has to be con- , 
vertible into a CT identity code and again restored 
5 at all interfaces between these systems. o 
Such an identity conversion is described in FI 
Patent Application 9 14655 , which is hereby in- 
corporated by reference. In the following the 
conversion of the PID into the IMSI (PID/IMSI 

10 conversion) according to the invention will be de- 
scribed briefly with reference to Figure 2: i) A 27- 
bit binary PID is converted into a decimal number 
(maximum value 134217727), which requires no more 
than 9 decimals, ii) A CT2 system identity number N, 

15 by means of which the GSM system is able to distin- 
guish a CT2 subscriber from GSM subscribers, is added 
at a desired position to the 9 -decimal number, e.g. 
as the most significant number. This results in a 10- 
number decimal number which forms an MS IN complying 

20 with the GSM specifications, iii) The network code 
MNC and the country code MCC are added in front of 
the MS IN, thus obtaining an IMSI complying with the 
GSM specifications, which can be used as such as a 
CT2 terminal equipment ^identity code in the GSM net- 

25 work. The IMSI is converted into the PID (IMSI/PID 
conversion) by performing the inverse conversions of 
the conversions i - iii in reverse order. 

The final IMSI is always formed at the latest 
in the MSC, so that the IMSI is used for the CT2 

30 terminal equipment everywhere in the GSM network out- 
side the MSCs. On the other hand, the PID is always 
used over the radio path between the BU and the MT. 
The functions required for the PID/IMSI and IMSI/PID 

»• 

conversions can, in principle, be distributed in any 
35 way between the BU or BUC and the MSC. 
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The subscriber identity code, may herein refer 
to either a subscriber specific identity code or to a 
terminal equipment specific identity code, depending 
on the systems to be integrated in each particular 
5 case. 

Another problem with the interconnecting of the 
CT2 and GSM systems is that the systems employ dif- 
ferent authentication parameters for subscriber 
identification. 

10 In the CT2 system the authentication is based 

on the use of a PIN parameter which is stored in- 
ternally in the CT2 telephone. In the authentication 
the base station BU compares the PIN parameter from 
the CT2 telephone MT with the actual PIN parameter of 

15 the telephone MT. For safety reasons, the PIN para- 
meter is encrypted for the transmission over the 
radio path. The CT2 authentication will be described 
below with reference to Figure 3. 

A random number generator 31 of the base 

20 station BU generates a 32-bit random challenge RAND 
(point 32) and sends it in a message AUTH-REQ to a 
CT2 telephone MT where it is received in the form 
RAND f (point 32A). The CT2 telephone MT derives a 32- 
bit CPIN parameter (point 35) from a 64-bit PIN para- 

25 meter and the parameter RAND 1 by an encryption 
algorithm F (point 34). The CPIN parameter is then 
sent in a message AUTH-RES to the base station BU, 
which receives it in the form CPIN' (point 35A). The 
base station BU deduces the value of a parameter E- 

30 PIN (expected-PIN) associated with the telephone MT 
by means_ of . identification information (point 37) and 
calculates the value of a parameter E-CPIN (expected 
CPIN) (point 31) from the parameters E-PIN and RAND 
by means of the algorithm F (point 38). The BU com- 

35 pares the obtained value CPIN' with the value E-CPIN 
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and if the values are equal , the . authentication has 
been accomplished properly . 

In the GSM system, the MSG may request authen- 
tication parameters for each subscriber MS from the 
5 authentication centre AC of the subscriber's MS home 
network by sending a message SEND-PARAMETERS . The 
authentication centre is either a separate unit or 
integrated in the HLR, as illustrated in Figure 1. 
The authentication centre AC selects a subscriber 

10 specific authentication key K t on the basis of the 
subscriber identity code IMS! contained in the 
message SEND_PARAMETERS . In addition , a random number 
generator 42 generates a plurality of random number 
parameters RAND (point 43), from which and the key K t 

15 a reference parameter SRES is derived by an authent- 
ication algorithm A3 (point 44) for each parameter 
RAND (point 45). The authentication centre AC sends 
these RAND/SRES pairs in a message SENDJPARAMETERS to 
the VLR, in which they are stored in a subscriber 

20 specific RAND/SRES table (point 46). 

When the VLR authenticates the subscriber 
identity code, it selects a value for the parameter 
RAND from the RAND/SRES table of this subscriber and 
sends the value in a message AUTHENTICATE to the MSC, 

25 which forwards it in a message AUT_REQUEST to the 
subscriber MS ( point 47 ) . The subscriber MS comprises 
the same authentication key K L and authentication 
algorithm A3 as those used in the authentication 
centre AC. The subscriber MS calculates the parameter 

30 SRES (50), which is the authentication response of 
the MS, by utilizing the parameter RAND received by 
it (point 47 ) r the key K ± (point 48 ) and the algorithm 
A3 (point 49). The MS returns the parameter SRES to 
the MSC in a message AUT_RESPONSE r and the MSC for- 

35 wards it in a message AUTHENTICATION_RESPONSE to the 
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VLR. The VLR compares (point 52) the value SRES sent 
by the MS with the stored value SRES (point 51), and 
if they are equal, the authentication has been 
accomplished properly. 
5 The above-described authentication procedures 

of the CT2 and GSM systems cannot be altered or 
integrated so as to achieve compatibility. This is 
due to the randomness of the identification responses 
E-PIN, CPIN and SRES to be calculated by the authen- 

10 tication algc ' thms F and A3, wherefore the 
algorithms do z- ; yield linear results . In order to 
accomplish proper authentication between a CT2 sub- 
scriber and the * 3M transmission network , the trans- 
missi n network also has to be able to perform the 

15 authentication procedure in compliance with the CT2 
system • 

In the invention, this is achieved by incorpor- 
ating the CT2 authentication algorithm F, the random 
number generator 31 and the algorithm 37 for deriving 

20 the parameter E-pin, located in the base station BU 
in Figure 3, in the authentication centre AC of the 
GSM system. The AC is capable of selecting the 
appropriate authentication algorithm on the basis of 
the subscriber identity code of the subscriber to be 

25 identified. CT2 subscribers, for instance, can be 
distinguished from ordinary GSM subscribers by means 
of a CT2 specific decimal number N contained in the 
MSIN field of the IMSI code assigned to the CT2 sub- 
scriber, as described above with reference to Figure 

30 2. In addition to the CT2 authentication algorithm, 
it is possible .that the authentication centre AC also 
comprises a table containing the authentication 
algorithms and random number generators of other sub- 
systems that may be connected to the GSM transmission 

35 network. Accordingly, an appropriate one of the 



WO 93/17529 



PCT/FI93/00063 



14 

authentication algorithms can be selected for each 
subscriber type on the basis of the subscriber 
identity code, and the authentication parameters 0 
generated by each authentication algorithm are trans- 
5 f erred to the VLR. The selection of the authentica- 
tion algorithm does not affect the signalling 
protocol or the structure of messages in the GSM 
system but CT2 specific authentication data is trans- 
ferred in the GSM network by standard GSM messages 

10 and information elements without changing the format 
of the information elements or the message format. As 
CT2 data is typically shorter than GSM data, the un- 
occupied space of the GSM information elements is 
filled' with zeros in conjunction with CT2 data, 

15 The authentication of a CT2 subscriber in the 

GSM system in accordance with the invention will be 
described below by way of example. Table I lists the 
messages, functions, protocol types and information 
elements used in Figure* 5. The table also refers to 

20 the page number of the * respective GSM or CT2 specifi- 
cation so that B refers to the GSM specification 
09.02, and E or A refers to the CT2 specification 
ETSI TC/RES I-ETS[???]. 

Referring to Figure 5 and Table I, the authen- 

25 tication according to the invention will be described 
by dividing it into the functions 631, 641, 651, 542, 
532, 621, 611, 622, 633 and 643. 

631) The MSG initiates the authentication by 
sending the VLR one of the MAP messages used for 

30 starting authentication. This message may be e.g. 

PRO_ACC_REQ. An appropriate authentication algorithm ~* 
is selected on the basis of the subscriber type. The 
subscriber type is determined by analyzing the IMS I t 
code. 

35 641) After having received the authentication 
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initiation message, the VLR may, if required, request 
the authentication centre AC of the HLR to send 
authentication parameters. However, this is not 
always necessary. If the VLR has a sufficient number 
5 of stored authentication parameters left from the 
previous request (cf. Figure 4), it does not need to 
request more parameters. Such a request is made by 
sending the message SEND_P ARAMET ERS to the HLR/ AC. 
This message consists of the Request Parameter 
10 information elements and complies with the MAP 
protocol. It contains the following parameters: 
REQUEST , IMSI , Authent icationSet , SubscriberData , CUG 
information and K 4 . When the message is sent, the 
timer having a timing period of 15 to 30 seconds is 
15 started. The timer is stopped when the message 
SEND_PARAMETER is received. 

651) On receiving the message SENDJPARAMETERS 
the authentication centre of the HLR analyses the 
IMSI code of the subscriber to find out whether CT2 
20 specific or GSM specific data is required. For a CT2 
subscriber, a CT2 specific authentication algorithm 
is used to perform a calculation operation after 
which the HLR/AC returns the requested parameter 
results in the message SEND_PARAMETERS . This message 
25 complies with the MAP protocol. The requested para- 
meters may be IMSI, AuthenticationSet, Subscriber- 
Data, CUG information and the key K t * 

AuthenticationSet = SEQUENCE [RAND, CPIN, K c ] • 
RAND is a random number used in the authent ica- 
30 tion. It is CT2 specific and shorter than the GSM 
specific random number RAND. 

CPIN is a 32-bit result of the CT2 algorithm 
performed by the AC of the subscriber, corresponding 
to the parameter E-CPIN of Figure 3. 
35 K c is an encryption key; it is not used in this 



WO 93/17529 



PCT/FI93/00063 



16 

specific case. 

642) After having received the message 
SEND__PARAMETERS the VLR initiates the authentication 
procedure by sending the message AUTHENTICATE to the 
5 MSC. The message complies with the MAP protocol. It 
contains the information elements RAND and cksn. Cksn 
stands for an encryption key sequence number which is 
not used in the CT2 authentication procedure as it is 
not relevant to the CT2 system. On transmitting this 

10 message , the VLR starts a T-aut counter the time 
value 'of which is 5 to 10 seconds. The timer is 
stopped when the VLR receives the message 
AUTHENTICATION_RES . 

632) The MSC maps the message AUTHENTICATE so 

15 that it complies with the MM' protocol and transfers 
a message CM_AUT_REQ to the CT2 base station BU. This 
message has to contain the parameter RAND as well. 

621) The base station BU maps the message 
CM_AUTJREQ in the message AUTHJREQ, which complies 

20 with the protocol format of the layer 3 of the CT2 
system. This authentication request information 
element comprises two parameters , RAND and INCZ. The 
message AUTH_REQ is sent to the telephone MT. 

611) The telephone MT receives the message 

25 AUTH_REQ and performs the required authentication 
algorithms. Then it responds with the message 
AUTH_RES , which complies with the CT2 protocol. This 
authentication response information element contains 
three parameters, CP IN, ZAP and TRD. 

30 ZAP represents the content of a 4-bit ZAP field 

stored in the mobile telephone MT 0 The operator may 
use it as part of the overall authentication process 
of the telephone MT. When the INCZ of the received 
message AUTH_REQ is set to one, it causes the MT to 

35 increment the content of the 4-bit ZAP field (modulo- 
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16). When the INCZ is set to zero, the field remains 
unchanged . 

The TRD field is used to transfer charging data 
associated with the CT2 system. The use and inter- 
5 pretation of data in this field can be selected by 
the operator o The TRD is an optional field of 
variable length, which may contain 23 BCD numbers. 

622) On receiving the message AUTH_RES the base 
station BU maps the message in the message 
10 CM_AUT_RES, which is sent to the MSG. The last- 
mentioned message complies with the MM 1 protocol and 
it has to contain the CT2 specific CPIN parameter. 

633) The MSC receives the message CM_AUT_RES 
and maps it in the message AUTHENT I CAT I ONMRES comply- 
15 ing with the MAP protocol. The AUTHENT I CAT IGNORES 
contains said calculated authentication parameter 
CPIN and is sent to the VLR. 

643) The VLR compares the received authentica- 
tion parameter CPIN with its internal parameter CPIN, 
20 which is calculated and sent to the VLR by the AC. If 
the parameters are equal, the authenticity of the MT 
has been proved. 

In place of storing and performing the algo- 
rithms merely in the authentication centre AC, at 
25 least part of the authentication algorithms may be 
located in and performed by the VLR, whereby the 
authentication centre AC sends the VLR only the 
encryption key K t in the message SEND_PARAMETERS . This 
is another way of processing the identification key 
30 specified in the GSM network, which, however, is not 
as safe as that described by way of example r as the 
key K t transferred to and known at several different 
locations in the network. 

The authentication algorithms and functions may 
35 also be distributed in another way in the GSM net- 



WO 93/17529 



PCIYFI93/00063 



18 

work, though it may thereby be necessary to deviate 
from the specifications of the GSM network. 

The attached figures and the description 
related to them are only intended to illustrate the 
5 present invention. In its details, the method and 
system according to the invention may vary within the 
spirit and scope of the attached claims. 
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Claims : 

1, Subscriber authentication method in a tele- 
communication system comprising a transmission net- 
5 work having subscriber identity codes of a first t 
format, a first subscriber authentication procedure 
and at least one exchange; a subsystem connected to 
said exchange and having subscriber identity codes of 
a second format and a second subscriber authentica- 
10 tion procedure, the calls of the subscribers of the 
subsystem being routed through the transmission net- 
work and said exchange, the method comprising the 
steps : 

the transmission network sends an authentica- 
15 tion message containing a first authentication para- 
meter to the subscriber through the exchange; 

the subscriber generates a second authentica- 
tion parameter in response to the received first aut- 
hentication parameter and sends it through the 
20 exchange as an authentication response to the trans- 
mission network, and 

the transmission network compares the second 
authentication parameter generated by the subscriber 
with a corresponding reference parameter and regards 
25 the subscriber as correctly authenticated if the 
second authentication parameter and the reference 
parameter are equal, characterized in 
that 

the transmission network employs for iden- 
30 tification of a subscriber of the subsystem a sub- 
scriber identity code converted from the second o 
format to the first format and containing a system 
code indicating that the identity code belongs to a < 
subscriber of the subsystem; 
35 the transmission network employs for authen- 
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tication of a subscriber a pair of the first authen- 
tication parameter and the reference parameter, 
generated according to the authentication procedure 
of the transmission system, when a subscriber 
5 identity code belongs to a subscriber of the trans- 
mission system; 

the transmission network employs for authen- 
tication of a subscriber a pair of the first authen- 
tication parameter and the reference parameter; gene- 
10 rated according to the authentication procedure of 
the subsystem, when a subscriber identity code 
belongs to a subscriber of the subsystem. 

2. Method according to claim 1, charac- 
terized in that said converted subsystem sub- 

15 scriber identity code and said authentication para- 
meters are transferred in the transmission network in 
the normal authentication messages of the 
transmission network. 

3. Authentication method according to claim 1 
20 or 2, characterized in that 

the switching centre initiates the authentica- 
tion by transmitting an authentication request 
containing the subscriber identity code of the sub- 
scriber to the authentication means of the transmis- 

25 sion network; 

the authentication means verify by means of 
said system code whether the subscriber identity code 
is a subsystem subscriber identity code or transmis- 
sion network subscriber identity code; 

30 the authentication means send an authentication 

message to the exchange, the authentication message 
containing the first authentication parameter gener- 
ated by the authentication algorithm of the transmis- 
sion network if the subscriber identity code of the 

35 authentication request is a transmission network sub- 
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scriber identity code, or generated by the authen- 
tication algorithm of the subsystem if the subscriber 
identity code of the authentication request is a sub- 
system subscriber identity code; 
5 the exchange sends the subscriber a second 

authentication request containing said first authen- 
tication parameter; 

the subscriber generates a second authentica- 
tion parameter on the basis of the received first 

10 authentication parameter, and sends the second 
authentication parameter as an authentication 
response to the exchange and further to the authen- 
tication means; 

the authentication means compare the second 
authentication parameter generated by the subscriber 
with a corresponding reference parameter and if the 
parameters are equal, the subscriber is regarded as 
5 correctly authenticated. 

4. Method according to claim 3, wherein the 
transmission network is a cellular mobile network in 
which said authentication means comprise at least one 
authentication centre and a visitor location register 

10 associated with the exchange, character i z - 
e d in that on receiving an authentication request 
from the exchange the visitor location register sends 
the authentication centre a parameter request con- 
taining the subscriber identity code; 

15 the authentication centre verifies whether the 

subscriber identity code is a transmission network 
identity code or a subsystem subscriber identity code 
and then performs, on the basis thereof, the trans- 
mission network or subsystem authentication algo- 

20 rithm, respectively, so as to generate at least one 
pair of the first parameter and the reference para- 
meter for the subscriber; 
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the authentication centre sends said at least 
one parameter pair to the visitor location register; 

the visitor location register sends the sub- 
scriber the first authentication parameter through 
5 the exchange; and 

the visitor location register compares the 
second authentication parameter generated by a remote 
station with a corresponding reference parameter and 
if the parameters are equal, the authentication has 
10 been accomplished properly. 

5. Method according to claim 4, charac- 
terized in that the authentication centre 
sends the visitor location register a plurality of 
subscriber specific parameter pairs which are stored 

15 in the visitor location register for subsequent 
authentications of the same subscriber. 

6. Telecommunication system comprising 

a transmission network having subscriber iden- 
tity codes of a first format and a first subscriber 

20 authentication procedure and at least one exchange 
(MSC1, MSC2); 

a subsystem connected to said exchange and hav- 
ing subscriber identity codes of a second format and 
a second subscriber authentication procedure, the 

25 calls of the subscribers of the subsystem being 
routed through the transmission network and said ex- 
change (MSC1, MSC2), characterized in 
that the parameter generation algorithms of both the 
first and the second authentication procedure are 

30 located in an authentication means (AC) of the 
transmission network, the proper algorithm for each 
subscriber to be authenticated being selectable on 
the basis of the type of the subscriber (MS, MT1 to 
MT6). 

35 7. Telecommunication system according to claim 
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6, characterized in that the subsystem 
is a cordless telephone system, 

8. Telecommunication system according to claim 

7, characterized in that the transmission 
5 network is a mobile radio system. 
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